$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144316.roa File: AS144316.roa (raw, json) Hash identifier: 7JceQQ8RHv6g/Aj6BeGDeFn5e+qODth47gHTM+WYwnE= Subject key identifier: 29:70:3E:CC:EA:59:CF:CF:EE:3C:31:14:63:99:99:FD:F8:9D:F8:BF Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0A55754B276C849837660EEBE75C3AAF12C29553 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144316.roa Signing time: Wed 04 Mar 2026 06:15:49 +0000 ROA not before: Wed 04 Mar 2026 06:10:49 +0000 ROA not after: Wed 03 Mar 2027 06:15:49 +0000 asID: 144316 IP address blocks: 240a:a682::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:55:75:4b:27:6c:84:98:37:66:0e:eb:e7:5c:3a:af:12:c2:95:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:49 2026 GMT Not After : Mar 3 06:15:49 2027 GMT Subject: CN=29703ECCEA59CFCFEE3C3114639999FDF89DF8BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d6:6e:f7:e5:50:e2:da:33:28:b4:e6:a6:8b: 6e:11:13:32:2f:3f:f5:87:b5:f3:c6:4a:71:9e:11: e7:3c:c5:b8:75:5d:b7:7e:fe:6b:d9:64:94:c1:18: c6:53:05:22:db:64:e9:09:43:bd:cf:fa:f5:60:7c: c1:58:9d:ee:13:f6:9a:30:40:e0:c0:29:ea:8d:33: 08:62:17:4e:05:98:c2:22:d8:65:e5:c1:d7:a6:89: 85:87:35:2c:24:4a:fe:cd:46:34:1c:66:71:4e:6a: f2:7f:2d:54:2a:fd:39:32:4b:88:03:fc:8f:14:c2: 06:93:6f:f1:d2:1b:ae:bd:21:ee:d0:3e:6d:0e:8c: a8:10:7c:68:6d:ec:3b:50:37:40:b8:ac:82:10:c3: 4a:fa:2b:e1:f7:e2:29:8b:1b:b3:bd:97:77:cf:1f: cb:95:4d:a4:3f:a6:ee:e1:a8:8b:d2:3c:b3:45:13: 1b:9e:7b:e6:21:4d:86:ed:db:a2:1d:43:3e:28:e8: 45:12:60:fb:8e:66:c0:0e:ca:a4:0e:ec:40:87:65: b9:77:5b:c6:00:8d:a9:08:09:3f:3b:04:6d:1f:35: 14:36:b9:45:1a:6f:8a:5d:41:95:e7:11:6a:0e:cf: 23:eb:30:43:a4:04:d6:8b:47:0f:59:b8:fe:e9:e2: 69:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:70:3E:CC:EA:59:CF:CF:EE:3C:31:14:63:99:99:FD:F8:9D:F8:BF X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144316.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a682::/32 Signature Algorithm: sha256WithRSAEncryption 02:ad:83:dc:7c:9f:25:4e:e6:7d:9e:7b:4e:e6:0c:a0:c4:66: 21:cc:89:85:53:fb:e8:b4:4e:13:3b:34:3f:c4:03:78:27:5b: fc:5a:ba:26:47:42:8c:6a:8a:12:b1:33:78:76:50:43:17:af: 8d:09:85:d5:99:34:c7:d6:2f:0c:ac:93:bd:df:3f:f5:03:35: b0:ab:03:4a:49:29:8a:b4:f0:21:8f:19:e8:50:e1:98:0d:f4: 38:ee:3e:db:b0:5a:6b:eb:28:a1:08:f4:bc:15:46:99:c2:2a: 3b:49:51:2e:88:7b:27:08:a9:5f:4d:fd:6c:63:45:b8:0f:78: c2:76:4e:0e:11:3c:3b:32:58:04:dc:63:b8:8a:83:bf:06:58: b6:e1:a1:fe:cd:71:92:6d:8c:bd:33:f6:74:b5:01:b7:38:4a: a4:5e:d5:d5:de:b3:5e:d4:9b:c0:11:83:30:69:92:4e:1a:e4: ab:64:bd:73:e3:a7:e2:48:fc:d4:b0:2d:8c:b2:ff:1a:48:39: 20:ef:ee:65:26:24:1f:da:af:1f:44:9c:cd:b4:ff:3f:d9:74: b3:c8:94:13:99:d1:c4:29:58:3c:75:df:03:86:2c:55:b0:16: 1c:2c:bb:e1:a0:a4:e4:7f:3f:8c:44:f8:d0:1e:9a:36:3b:cf: da:cb:1f:62 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUClV1SydshJg3Zg7r51w6rxLClVMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTA0OVoX DTI3MDMwMzA2MTU0OVowMzExMC8GA1UEAxMoMjk3MDNFQ0NFQTU5Q0ZDRkVFM0Mz MTE0NjM5OTk5RkRGODlERjhCRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANXWbvflUOLaMyi05qaLbhETMi8/9Ye188ZKcZ4R5zzFuHVdt37+a9lklMEY xlMFIttk6QlDvc/69WB8wVid7hP2mjBA4MAp6o0zCGIXTgWYwiLYZeXB16aJhYc1 LCRK/s1GNBxmcU5q8n8tVCr9OTJLiAP8jxTCBpNv8dIbrr0h7tA+bQ6MqBB8aG3s O1A3QLisghDDSvor4ffiKYsbs72Xd88fy5VNpD+m7uGoi9I8s0UTG5575iFNhu3b oh1DPijoRRJg+45mwA7KpA7sQIdluXdbxgCNqQgJPzsEbR81FDa5RRpvil1BlecR ag7PI+swQ6QE1otHD1m4/uniaV0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQpcD7M 6lnPz+48MRRjmZn9+J34vzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDMxNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK poIwDQYJKoZIhvcNAQELBQADggEBAAKtg9x8nyVO5n2ee07mDKDEZiHMiYVT++i0 ThM7ND/EA3gnW/xauiZHQoxqihKxM3h2UEMXr40JhdWZNMfWLwysk73fP/UDNbCr A0pJKYq08CGPGehQ4ZgN9DjuPtuwWmvrKKEI9LwVRpnCKjtJUS6IeycIqV9N/Wxj RbgPeMJ2Tg4RPDsyWATcY7iKg78GWLbhof7NcZJtjL0z9nS1Abc4SqRe1dXes17U m8ARgzBpkk4a5KtkvXPjp+JI/NSwLYyy/xpIOSDv7mUmJB/arx9EnM20/z/ZdLPI lBOZ0cQpWDx13wOGLFWwFhwsu+GgpOR/P4xE+NAemjY7z9rLH2I= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:09 2026 by rpki-client